github/kata-containers
1
0
Fork 2
mirror of https://github.com/kata-containers/kata-containers.git synced 2025-09-14 05:19:21 +00:00
Code Issues Projects Releases Wiki Activity

ci: set Zizmor as required test

Browse Source 
This adds Zizmor GHA security scanning as a PR gate.

Note that this does NOT require that Zizmor returns 0 alerts, but rather
that Zizmor's invocation completes successfully (regardless of how many
alerts it raises).

I will set up the former after this commit is merged (through the GH UI).

Signed-off-by: Aurélien Bombo <abombo@microsoft.com>
This commit is contained in:
Aurélien Bombo
2025-06-26 12:36:41 -05:00
parent 820c1389db
commit d94085916e
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
tools/testing/gatekeeper/required-tests.yaml
View File

@@ -6,7 +6,7 @@ required_tests:
- Shellcheck required / shellcheck-required - Shellcheck required / shellcheck-required
# TODO: cargo-deny-runner.yaml not yet treated as conditional # TODO: cargo-deny-runner.yaml not yet treated as conditional
- Cargo Crates Check Runner / cargo-deny-runner - Cargo Crates Check Runner / cargo-deny-runner
- GHA security analysis / zizmor
required_regexps: required_regexps:
# Always required regexps # Always required regexps